CVE-2014-6617

Severity CVSS v4.0:
Pending analysis
Type:
CWE-798 Use of Hard-coded Credentials
Publication date:
09/03/2018
Last modified:
09/10/2018

Description

Softing FG-100 PB PROFIBUS firmware version FG-x00-PB_V2.02.0.00 contains a hardcoded password for the root account, which allows remote attackers to obtain administrative access via a TELNET session.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:industrial.softing:fg-100_pb_profibus_firmware:fg-x00-pb_v2.02.0.00:*:*:*:*:*:*:*
cpe:2.3:h:industrial.softing:fg-100_pb_profibus:-:*:*:*:*:*:*:*